From 698f178d4ed1f04f58936fcfb1a0c0753ee69679 Mon Sep 17 00:00:00 2001
From: Guillaume Maudoux <layus.on@gmail.com>
Date: Wed, 1 Feb 2017 10:33:58 +0100
Subject: [PATCH] default nixos config: add firewall options.

By showing how to open ports in the firewall and how to disable it, we make users aware that there is a firewall enabled by default.
---
 nixos/modules/installer/tools/nixos-generate-config.pl | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/nixos/modules/installer/tools/nixos-generate-config.pl b/nixos/modules/installer/tools/nixos-generate-config.pl
index e17c02d13745..0a5624ff6a3f 100644
--- a/nixos/modules/installer/tools/nixos-generate-config.pl
+++ b/nixos/modules/installer/tools/nixos-generate-config.pl
@@ -588,6 +588,12 @@ $bootLoaderConfig
   # Enable the OpenSSH daemon.
   # services.openssh.enable = true;
 
+  # Open ports in the firewall.
+  # networking.firewall.allowedTCPPorts = [ ... ];
+  # networking.firewall.allowedUDPPorts = [ ... ];
+  # Or disable the firewall altogether.
+  # networking.firewall.enable = false;
+
   # Enable CUPS to print documents.
   # services.printing.enable = true;